Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-940 (通信信道源的不正确验证) — Vulnerability Class 31

31 vulnerabilities classified as CWE-940 (通信信道源的不正确验证). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-40434 Anviz CrossChex Standard Improper Verification of Source of a Communication Channel — Anviz CrossChex Standard 8.1 High2026-04-17
CVE-2026-35643 OpenClaw < 2026.3.22 - Arbitrary Code Execution via Unvalidated WebView JavascriptInterface — OpenClaw 8.8 High2026-04-10
CVE-2026-33875 Authenticator Vulnerable to Authentication Flow Hijack — app-Authenticator 9.3 Critical2026-03-27
CVE-2019-25613 Easy Chat Server 3.1 Denial of Service via message Parameter — Easy Chat 7.5 High2026-03-22
CVE-2026-2967 Cesanta Mongoose TCP Sequence Number net_builtin.c getpeer verification of source — Mongoose 3.7 Low2026-02-23
CVE-2026-22269 Dell PowerProtect Data Manager 安全漏洞 — PowerProtect Data Manager 4.7 Medium2026-02-19
CVE-2025-62439 Fortinet FortiOS 安全漏洞 — FortiOS 3.8 Medium2026-02-10
CVE-2025-40820 Siemens多款产品 安全漏洞 — SIDOOR ATD430W 7.5 High2025-12-09
CVE-2025-13086 OpenVPN 安全漏洞 — OpenVPN 7.5AIHighAI2025-12-03
CVE-2025-61932 MOTEX Lanscope Endpoint Manager 安全漏洞 — Lanscope Endpoint Manager (On-Premises) (Client program (MR) and Detection agent (DA)) 9.8AICriticalAI2025-10-20
CVE-2025-20365 Cisco Access Point Software 安全漏洞 — Cisco Aironet Access Point Software (IOS XE Controller) 4.3 Medium2025-09-24
CVE-2025-9999 Improper validation of payload elements — PcVue 9.8AICriticalAI2025-09-05
CVE-2025-42978 Insufficiently Secure Hostname Verification for Outbound TLS Connections in SAP NetWeaver Application Server Java — SAP NetWeaver Application Server Java 3.5 Low2025-07-08
CVE-2025-25305 SSL validation for outgoing requests in Home Assistant Core and used libs not correct — core 7.0 High2025-02-18
CVE-2025-23222 dde-api-proxy 安全漏洞 — dde-api-proxy 8.4 High2025-01-24
CVE-2024-7322 Dos in ZigBee device due to unsolicited encrypted rejoin response — EmberZNet 5.8 Medium2025-01-15
CVE-2024-36506 Fortinet FortiClientEMS 安全漏洞 — FortiClientEMS 3.5 Low2025-01-14
CVE-2025-23019 IPv6-in-IPv4 tunneling 安全漏洞 — IPv6 5.4 Medium2025-01-14
CVE-2025-23018 IPv6-in-IPv4 tunneling 安全漏洞 — IPv6 5.4 Medium2025-01-14
CVE-2024-49579 JetBrains YouTrack 安全漏洞 — YouTrack 8.1 High2024-10-17
CVE-2024-20390 Cisco IOS XR Software Dedicated XML Agent TCP Denial of Service Vulnerability — Cisco IOS XR Software 5.3 Medium2024-09-11
CVE-2024-1621 uniFLOW Online device registration susceptible to compromise — uniFLOW Online 9.8AICriticalAI2024-09-02
CVE-2024-0009 PAN-OS: Improper IP Address Verification in GlobalProtect Gateway — PAN-OS 6.3 Medium2024-02-14
CVE-2023-51440 Siemens SIMATIC 安全漏洞 — SIMATIC CP 343-1 7.5 High2024-02-13
CVE-2023-48387 TAIWAN-CA(TWCA) JCICSecurityTool - Improper Input Validation — JCICSecurityTool 8.8 High2023-12-15
CVE-2023-41355 Chunghwa Telecom NOKIA G-040W-Q - Improper Input Validation — NOKIA G-040W-Q 9.8 Critical2023-11-03
CVE-2023-41094 Touchlink authentication bypass due to packets processed after timeout or out of range in Ember ZNet — Ember ZNet 10.0 Critical2023-10-04
CVE-2023-3663 CODESYS: Missing integrity check in CODESYS Development System — CODESYS Development System 8.8 High2023-08-03
CVE-2022-4848 Improper Verification of Source of a Communication Channel in usememos/memos — usememos/memos 6.5 -2022-12-29
CVE-2022-4800 Improper Verification of Source of a Communication Channel in usememos/memos — usememos/memos 6.5 -2022-12-28

Vulnerabilities classified as CWE-940 (通信信道源的不正确验证) represent 31 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.